Security Advisory

CVE-2024-24783

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-03-05 22:22:26

Last updated 2025-02-13 17:40:23

Assigner Go

State PUBLISHED

Description

Verifying a certificate chain which contains a certificate with an unknown public key algorithm will cause Certificate.Verify to panic. This affects all crypto/tls clients, and servers that set Config.ClientAuth to VerifyClientCertIfGiven or RequireAndVerifyClientCert. The default behavior is for TLS servers to not verify client certificates.

← Browse all CVEs View on cve.org ↗